Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/q7zvd33opWVrFS-zaLN9ZVKh_N0.roa
File: q7zvd33opWVrFS-zaLN9ZVKh_N0.roa (raw, json)
Hash identifier: qpigvAMC+dN5OOEwIdlg/cygq4/1gTGkP2izPtgTMuM=
Subject key identifier: AB:BC:EF:77:7D:E8:A5:65:6B:15:2F:B3:68:B3:7D:65:52:A1:FC:DD
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 018570CBEB21281724F4246602A7542C1555
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/q7zvd33opWVrFS-zaLN9ZVKh_N0.roa
Signing time: Mon 02 Jan 2023 04:44:50 +0000
ROA not before: Mon 02 Jan 2023 04:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205370
IP address blocks: 84.38.141.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:eb:21:28:17:24:f4:24:66:02:a7:54:2c:15:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Jan 2 04:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abbcef777de8a5656b152fb368b37d6552a1fcdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fe:cc:5c:08:a2:15:e7:a7:1f:df:b2:c0:03:
15:df:c6:1d:73:ad:7d:5d:04:d0:a2:be:30:52:da:
82:73:f8:1d:fd:22:fe:be:25:8e:44:f4:2c:21:99:
57:b7:bc:25:d7:4a:16:b4:bc:5f:a7:22:b1:f9:f7:
33:4c:b9:c7:99:b5:38:85:e1:a0:1d:f3:d5:e1:dc:
d9:cd:62:b4:e5:d5:3d:03:cc:dd:7a:ef:8a:9c:2f:
61:06:7f:f9:55:81:d6:b6:c2:5a:03:6d:3b:25:23:
48:4b:cd:4d:b8:49:76:f1:b3:4f:25:54:fa:61:51:
1a:ce:d4:20:6b:72:35:c2:54:2c:c6:ce:1f:d3:17:
8a:0b:2f:4c:10:1b:a6:0e:b6:af:99:5f:80:db:9f:
1e:d2:7b:ae:1c:27:a1:31:21:8b:f0:15:21:27:63:
08:0d:db:2f:00:82:8d:74:40:cc:88:67:44:29:eb:
f0:ce:0e:0b:37:db:2e:0b:9a:dc:18:ca:50:6b:b7:
08:1d:17:68:14:05:5e:7a:60:99:39:fe:9a:d3:2c:
b3:a8:8e:97:d7:5b:20:10:2d:4e:b5:f6:60:1a:8d:
7e:7b:56:6d:e7:90:27:25:c1:37:1f:e6:3a:bc:aa:
4b:10:3a:29:d4:76:51:90:55:55:c5:bb:37:86:ba:
d2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:BC:EF:77:7D:E8:A5:65:6B:15:2F:B3:68:B3:7D:65:52:A1:FC:DD
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/q7zvd33opWVrFS-zaLN9ZVKh_N0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.38.141.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:11:da:54:9c:3f:be:13:6b:43:6f:98:8a:95:db:ba:b3:1c:
72:d5:32:a1:e6:ac:12:da:60:3d:bd:dd:47:c4:9e:b0:56:e4:
b9:15:e4:bd:bd:82:d2:9a:a4:b2:ee:98:4e:25:f2:b3:b7:42:
d8:89:c5:f5:b4:8e:b9:cd:4d:d8:4d:8c:a0:27:49:37:0d:81:
86:a2:c9:25:10:22:bf:01:99:3c:80:0e:12:40:86:c2:f2:65:
e9:db:c6:6c:bd:19:3a:ff:10:33:8d:2a:e5:8c:e7:d7:74:3a:
08:2c:a4:90:f3:51:ad:47:4e:4b:5b:dd:97:08:a1:dc:0d:41:
d8:1e:db:ee:d9:c0:4b:d6:1c:15:b7:31:05:72:b8:6e:e7:73:
d1:20:f0:70:23:b2:94:31:5a:e2:f4:c8:18:18:4e:ea:5f:89:
ce:5c:1b:76:b6:ae:aa:1a:42:d1:23:b9:ba:13:87:18:0b:c7:
a1:46:ad:4a:4b:a4:19:48:26:0e:31:6c:38:6a:aa:d4:e9:b7:
4c:c6:b2:4e:8d:30:4c:d3:c2:34:7f:87:66:96:43:9b:12:7d:
44:76:cb:ae:ee:2b:65:bd:18:fa:bd:f7:9b:99:8d:0b:c5:44:
6c:96:b5:fc:8a:9e:85:b4:52:d8:df:c1:7a:d1:79:92:23:70:
9c:c5:e0:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:37 2024 by rpki-client on console-ams.rpki-client.org